专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2012060891A1 A NEW METHOD FOR SECURE USER AND SITE AUTHENTICATION 审中-公开
标题翻译：一种确保用户和站点认证的新方法
公开(公告)号：WO2012060891A1
公开(公告)日：2012-05-10
申请号：PCT/US2011/023528
申请日：2011-02-03
申请人： AUTHENTIFY INC. , GANESAN, Ravi
发明人： GANESAN, Ravi
IPC分类号： G06F7/04 , G06F15/16
CPC分类号： G06F21/42 , H04L63/0838 , H04L63/1483 , H04L67/02
摘要： The present invention provides a new method of site and user authentication that is achieved by creating a pop-up window on the user's PC that is in communication with a security server, and where this communication channel is separate from the communication between the user's browser and whichever web site they are at. A legitimate web site embeds code in the web page which communicates to the security server from the user's desktop. The security server checks the legitimacy of the web site and then signals both the web page on the user's browser, as well as the pop-up window to which it has a separate channel. If user authentication is requested by the web site the user is first authenticated by the security server for instance by out of band authentication.
摘要翻译：本发明提供了一种通过在与安全服务器通信的用户PC上创建弹出窗口并且该通信信道与用户的浏览器和无论他们在哪个网站。合法的网站将代码嵌入到从用户桌面与安全服务器通信的网页中。安全服务器检查网站的合法性，然后发出用户浏览器上的网页以及具有单独通道的弹出窗口。如果网站要求用户认证，则用户首先由安全服务器进行身份验证，例如通过带外认证。

2. 发明申请

WO2011136928A1 SECURE AND EFFICIENT LOGIN AND TRANSACTION AUTHENTICATION USING IPHONES AND OTHER SMART MOBILE COMMUNICATION DEVICES 审中-公开
标题翻译：使用IPHONES和其他智能手机通信设备进行安全有效的登录和交易验证
公开(公告)号：WO2011136928A1
公开(公告)日：2011-11-03
申请号：PCT/US2011/032271
申请日：2011-04-13
申请人： HAWK AND SEAL, INC. , GANESAN, Ravi
发明人： GANESAN, Ravi
IPC分类号： G06F7/04
CPC分类号： H04W12/06 , G06Q20/425 , H04L9/321 , H04L9/3215 , H04L9/3226 , H04L9/3234 , H04L63/08 , H04L63/083 , H04L63/18 , H04L2209/56 , H04L2209/80
摘要： To authenticate a user of a mobile communication device for login or transaction authorization, a first application on the device directs transmission of a request for authentication of the user to a security server. A second application on the device receives the request for authentication from the security server and directs presentation of the received request for authentication to the user by the device. The second application receives a user input to the device indicating that the requested authentication should proceed and in response directs transmission of an indication that the requested authorization should proceed, to the security server. In response to this latter transmission, the second application receives a PIN from the authentication server. The first application directs transmission of the PIN received by the second application to the network site, which validates the transmitted PIN, in order to authenticate the user or the transaction to the network site.
摘要翻译：为了对用于登录或交易授权的移动通信设备的用户进行认证，设备上的第一应用将用户认证请求的传输指向安全服务器。设备上的第二个应用程序从安全服务器接收认证请求，并通过该设备指示接收的用户认证请求的呈现。第二应用程序接收到设备的用户输入，指示所请求的认证应当继续，并且响应地指示所请求的授权应该进行的指示的传输到安全服务器。响应于后一种传输，第二应用从认证服务器接收PIN。第一个应用程序将第二个应用程序接收到的PIN传输到网络站点，以验证发送的PIN码，以便向网络站点认证用户或交易。

3. 发明申请

WO2011094245A1 A NEW METHOD FOR SECURE USER AND TRANSACTION AUTHENTICATION AND RISK MANAGEMENT 审中-公开
标题翻译：一种安全用户和交易认证和风险管理的新方法
公开(公告)号：WO2011094245A1
公开(公告)日：2011-08-04
申请号：PCT/US2011/022486
申请日：2011-01-26
申请人： HAWK AND SEAL, INC. , GANESAN, Ravi
发明人： GANESAN, Ravi
IPC分类号： G06F7/04
CPC分类号： H04L63/0838 , G06Q20/385 , H04L9/3228 , H04L9/3247 , H04L63/18 , H04L2209/56 , H04L2209/80
摘要： To provide a user signature on a network transaction, a security server receives transaction information representing a transaction between a network user and a network site, such as a website, directly from the network site. The security server calculates a one-time- password based on the received transaction information and a secret shared by the security server and the network site, but not by the user. The security server transmits the calculated one-time-password for application as the user's signature on the transaction. The one-time- password is independently calculable by the network site based on the shared secret.
摘要翻译：为了在网络事务处提供用户签名，安全服务器直接从网络站点接收表示网络用户与网站（例如网站）之间的交易的交易信息。安全服务器根据接收到的交易信息和安全服务器和网站共享的秘密，而不是由用户计算一次密码。安全服务器将用于申请的计算的一次性密码作为交易的用户签名发送。一次性密码可以由网站根据共享密码独立计算。

4. 发明申请

WO2006130619A2 SECURE LOGIN USING AUGMENTED SINGLE FACTOR SPLIT KEY ASYMMETRIC CRYPTOGRAPHY 审中-公开
标题翻译：安全登录使用增强的单因素分割关键不对称CRYPTOGRAPHY
公开(公告)号：WO2006130619A2
公开(公告)日：2006-12-07
申请号：PCT/US2006/020992
申请日：2006-05-31
申请人： TRICIPHER, INC. , GANESAN, Ravi , SANDHU, Ravinderpal, Singh , COTTRELL, Andrew, Paul , AUSTIN, Kyle
发明人： GANESAN, Ravi , SANDHU, Ravinderpal, Singh , COTTRELL, Andrew, Paul , AUSTIN, Kyle
CPC分类号： H04L9/3226 , H04L9/0822 , H04L9/0825
摘要： A user network station transmits a cookie that includes a user identifier and an augmenting factor transformed with one key of a first asymmetric crypto-key or with a symmetric crypto-key. An authenticating entity network station recovers the augmenting factor from the transformed augmenting factor included in the transmitted cookie, with the other key of the first asymmetric crypto-key or with the symmetric crypto-key, and transmits a customized login page corresponding to the user identifier. The user network station transmits a factor responsive to the transmitted customized login page. The authenticating entity network station generates a first key portion based on the transmitted factor and the recovered augmenting factor, and validates the generated first key portion based on a second key portion of one key of a second asymmetric crypto-key associated with the user and on the other key of the second asymmetric crypto-key, to thereby authenticate the user.
摘要翻译：用户网络站发送包括用第一非对称密钥或对称密钥的一个密钥转换的用户标识符和扩充因子的cookie。认证实体网络站利用包含在发送的cookie中的变换扩充因子与第一非对称密钥或对称密钥的另一个密钥进行恢复，并发送与用户标识符对应的定制登录页面。用户网络站发送响应于所发送的定制登录页面的因素。认证实体网站基于所发送的因子和恢复的扩充因子生成第一密钥部分，并且基于与用户相关联的第二非对称密钥的一个密钥的第二密钥部分来验证生成的第一密钥部分，第二非对称密钥的另一个密钥，从而认证用户。

5. 发明申请

WO2013184266A2 ENHANCED 2CHK AUTHENTICATION SECURITY WITH QUERY TRANSACTIONS 审中-公开
标题翻译：与查询交易增强2CHK认证安全
公开(公告)号：WO2013184266A2
公开(公告)日：2013-12-12
申请号：PCT/US2013/039679
申请日：2013-05-06
申请人： AUTHENTIFY, INC. , TAPLING, Peter, George , ROLFE, Andew, Robert , GANESAN, Ravi , SHEWARD, Sally
发明人： TAPLING, Peter, George , ROLFE, Andew, Robert , GANESAN, Ravi , SHEWARD, Sally
IPC分类号： G06F21/00
CPC分类号： H04L63/04 , G06F21/34 , G06F21/42 , H04L9/3228 , H04L9/3247 , H04L9/3271 , H04L63/0823 , H04L63/0853 , H04L63/18
摘要： A security server receives a request of a user to activate a secure communications channel over the network and, in response, transmits an activation code for delivery to the user via another network. The security server receives an activation code from the user network device via the network, compares the received activation code with the transmitted activation code to validate the received activation code, and activates the secure communications channel based on the validation. The security server next receives a query including a question for the user from an enterprise represented on the network, transmits the received enterprise query to the user network device via the secure communications channel, and receives, from the user network device via the secure communications channel, a user answer to the transmitted enterprise query. The security server then transmits the received user answer to the enterprise to further authenticate the user to the enterprise.
摘要翻译：安全服务器接收用户的请求以激活网络上的安全通信信道，并作为响应，通过另一网络发送用于传送给用户的激活码。安全服务器经由网络从用户网络设备接收激活码，将接收到的激活码与发送的激活码进行比较，以验证所接收到的激活码，并根据验证激活安全通信信道。安全服务器接下来从网络中表示的企业接收包括用户的问题的查询，经由安全通信信道将接收的企业查询发送到用户网络设备，并经由安全通信信道从用户网络设备接收，用户回答传输的企业查询。然后，安全服务器将接收的用户答复发送给企业，以进一步向企业认证用户。

6. 发明申请

WO2006130619A3 SECURE LOGIN USING AUGMENTED SINGLE FACTOR SPLIT KEY ASYMMETRIC CRYPTOGRAPHY 审中-公开
标题翻译：安全登录使用增强的单因素分割关键不对称CRYPTOGRAPHY
公开(公告)号：WO2006130619A3
公开(公告)日：2009-04-23
申请号：PCT/US2006020992
申请日：2006-05-31
申请人： TRICIPHER INC , GANESAN RAVI , SANDHU RAVINDERPAL SINGH , COTTRELL ANDREW PAUL , AUSTIN KYLE
发明人： GANESAN RAVI , SANDHU RAVINDERPAL SINGH , COTTRELL ANDREW PAUL , AUSTIN KYLE
IPC分类号： H04L9/00
CPC分类号： H04L9/3226 , H04L9/0822 , H04L9/0825
摘要： A user network station transmits a cookie that includes a user identifier and an augmenting factor transformed with one key of a first asymmetric crypto-key or with a symmetric crypto-key. An authenticating entity network station recovers the augmenting factor from the transformed augmenting factor included in the transmitted cookie, with the other key of the first asymmetric crypto-key or with the symmetric crypto-key, and transmits a customized login page corresponding to the user identifier. The user network station transmits a factor responsive to the transmitted customized login page. The authenticating entity network station generates a first key portion based on the transmitted factor and the recovered augmenting factor, and validates the generated first key portion based on a second key portion of one key of a second asymmetric crypto-key associated with the user and on the other key of the second asymmetric crypto-key, to thereby authenticate the user.
摘要翻译：用户网络站发送包含用第一非对称密钥或对称密钥的一个密钥转换的用户标识符和扩充因子的cookie。认证实体网络站利用包含在所发送的cookie中的变换扩充因子与第一非对称密钥或对称密钥的另一个密钥来恢复增强因子，并发送对应于用户标识符的定制登录页面。用户网络站发送响应于所发送的定制登录页面的因素。认证实体网站基于所发送的因子和恢复的扩充因子生成第一密钥部分，并且基于与用户相关联的第二非对称密钥的一个密钥的第二密钥部分来验证生成的第一密钥部分，第二非对称密钥的另一个密钥，从而认证用户。

7. 发明申请

WO2007095240A2 FLEXIBLE AND ADJUSTABLE AUTHENTICATION IN CYBERSPACE 审中-公开
标题翻译：在CYBERSPACE中的灵活和可调整的认证
公开(公告)号：WO2007095240A2
公开(公告)日：2007-08-23
申请号：PCT/US2007/003820
申请日：2007-02-12
申请人： TRICIPHER, INC. , SANDHU, Ravi, Singh , GANESAN, Ravi , COTTRELL, Andrew, Paul , RENSHAW, Timothy, Scott , SCHOPPERT, Brett, Jason , AUSTIN, Kyle
发明人： SANDHU, Ravi, Singh , GANESAN, Ravi , COTTRELL, Andrew, Paul , RENSHAW, Timothy, Scott , SCHOPPERT, Brett, Jason , AUSTIN, Kyle
CPC分类号： H04L9/0825 , G06F21/31 , G06F2221/2115 , H04L9/321 , H04L9/3228 , H04L9/3271 , H04L63/0823 , H04L63/0838 , H04L63/14 , H04L63/1466 , H04L2209/043 , H04L2209/80
摘要： To authenticate a user of a communications network, credentials from the user are centrally receiving. An authentication sequence is retrieved from a plurality of retrievable authentication sequences, and the retrieved authentication sequence is performed to authenticate the user based on the received credentials.
摘要翻译：要认证通信网络的用户，来自用户的凭证将集中接收。从多个可检索认证序列中检索认证序列，并且根据所接收到的证书，执行检索的认证序列以认证用户。

8. 发明申请

WO2013184267A1 ENHANCED 2CHK AUTHENTICATION SECURITY WITH QUERY TRANSACTIONS 审中-公开
标题翻译：查询交易增强了2CHK身份验证安全性
公开(公告)号：WO2013184267A1
公开(公告)日：2013-12-12
申请号：PCT/US2013/039684
申请日：2013-05-06
申请人： AUTHENTIFY, INC. , TAPLING, Peter, George , ROLFE, Andew, Robert , GANESAN, Ravi , SHEWARD, Sally
发明人： TAPLING, Peter, George , ROLFE, Andew, Robert , GANESAN, Ravi , SHEWARD, Sally
IPC分类号： G06F21/00
CPC分类号： H04L63/04 , G06F21/34 , G06F21/42 , H04L9/3228 , H04L9/3247 , H04L9/3271 , H04L63/0823 , H04L63/0853 , H04L63/18
摘要： A security server receives a request of a user to activate a secure communications channel over the network and, in response, transmits an activation code for delivery to the user via another network. The security server receives an activation code from the user network device via the network, compares the received activation code with the transmitted activation code to validate the received activation code, and activates the secure communications channel based on the validation. The security server next receives a query including a question for the user from an enterprise represented on the network, transmits the received enterprise query to the user network device via the secure communications channel, and receives, from the user network device via the secure communications channel, a user answer to the transmitted enterprise query. The security server then transmits the received user answer to the enterprise to further authenticate the user to the enterprise.
摘要翻译：安全服务器接收用户的请求以激活网络上的安全通信信道，并且作为响应，通过另一网络发送用于传递给用户的激活码。安全服务器通过网络从用户网络设备接收激活码，将接收到的激活码与所发送的激活码进行比较以验证接收到的激活码，并且基于验证来激活安全通信信道。安全服务器接下来从网络上表示的企业接收包括针对用户的问题的查询，经由安全通信信道将接收到的企业查询发送到用户网络装置，并且经由安全通信信道从用户网络装置接收，用户回答所传送的企业查询。然后，安全服务器将接收到的用户答案发送给企业，以进一步向企业认证用户。

9. 发明申请

WO2013184265A1 ENTERPRISE TRIGGERED 2CHK ASSOCIATION 审中-公开
标题翻译：企业触发的2CHK协会
公开(公告)号：WO2013184265A1
公开(公告)日：2013-12-12
申请号：PCT/US2013/039664
申请日：2013-05-06
申请人： AUTHENTIFY, INC. , TAPLING, Peter, George , ROLFE, Andrew, Robert , GANESAN, Ravi
发明人： TAPLING, Peter, George , ROLFE, Andrew, Robert , GANESAN, Ravi
IPC分类号： G06F21/00
CPC分类号： G06F21/42 , H04L9/3226 , H04L9/3234 , H04L9/3247 , H04L63/0428 , H04L63/083 , H04L63/18
摘要： A method of operating a security server to securely transact business between a user and an enterprise via a network includes receiving, at the security server from an enterprise with which the user is currently connected via the network, a request of the enterprise to activate a secure communications channel over the network between the user and the security server. The request includes contact information for contacting the user via other than the network. The security server, in response, transmits an activation code for delivery to the user via other than the network and in a manner corresponding to the received contact information. The security server receives, from the user via the network, an activation code and compares the received activation code with the transmitted activation code to validate the received activation code. The secure communications channel is then activated based on the validation of the received activation code.
摘要翻译：一种操作安全服务器以经由网络安全地交易用户与企业之间的业务的方法包括：在所述安全服务器处从所述用户当前通过所述网络连接的企业接收所述企业的请求以激活安全在用户和安全服务器之间的网络上的通信信道。该请求包括用于通过网络以外的用户联系的联系信息。安全服务器作为响应，通过除网络之外的方式并且以与所接收的联系人信息相对应的方式发送用于传送给用户的激活码。安全服务器从用户经由网络接收激活码，并将接收到的激活码与发送的激活码进行比较，以验证所接收到的激活码。然后基于接收到的激活码的验证激活安全通信信道。

10. 发明申请

WO2012060890A1 A NEW METHOD FOR SECURE SITE AND USER AUTHENTICATION 审中-公开
标题翻译：一种新的安全网站和用户认证方法
公开(公告)号：WO2012060890A1
公开(公告)日：2012-05-10
申请号：PCT/US2011/023525
申请日：2011-02-03
申请人： AUTHENTIFY INC. , GANESAN, Ravi
发明人： GANESAN, Ravi
IPC分类号： G06F15/16
CPC分类号： H04L63/08 , G06F21/33 , G06F21/42 , G06F21/51 , G06F21/566 , H04L63/0838 , H04L67/02
摘要： The present invention provides a new method of site and user authentication. This is achieved by creating a pop-up window on the user's PC that is in communication with a security server. The security server checks the legitimacy of the web site and then signals both the web page on the user's browser and the pop-up window. The security server also sends a random image to both the pop-up window and browser. If user authentication is requested by the web site, the user is first authenticated by the security server by out of band authentication. Then the security server computes a one time password based on a secret it shares with the web site and sends it to the pop up window. The user copies this one time password into their browser which sends it to the web site to re-compute the one time password for authenticating the user.
摘要翻译：本发明提供了一种现场和用户认证的新方法。这通过在与安全服务器通信的用户PC上创建弹出窗口来实现。安全服务器检查网站的合法性，然后发出用户浏览器上的网页和弹出窗口。安全服务器还向弹出窗口和浏览器发送随机映像。如果网站要求用户认证，则用户首先通过带外认证由安全服务器认证。然后，安全服务器根据与网站共享的秘密计算一次性密码，并将其发送到弹出窗口。用户将此一次性密码复制到浏览器中，将其发送到网站，以重新计算用于验证用户的一次性密码。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式